Lead Blockchain Security Developer (Canton)

About us

OpenZeppelin is the security standard onchain finance is built on. Founded in 2015, our mission is to accelerate the world's transition to an open financial system, built on open standards and secured by rigorous research.

Our open-source Contract Libraries have facilitated over $35 trillion in onchain value and are used by 10 of the top 10 tokenized money market funds and 9 of the top 10 stablecoins by market cap.

We combine AI-native security tooling with deep research and a decade of audit expertise to support leading institutions and crypto-native teams shaping the next generation of digital assets like DTCC, Fidelity, Coinbase, Uniswap, Aave, the Ethereum Foundation, and many more across the full secure development lifecycle.

The Secure Development team

OpenZeppelin is the security partner of choice for the most important protocols in Web3. Our Secure Development team sits at the intersection of building and breaking: we design, implement, and harden production-grade libraries and smart contracts for leading projects across EVM, Starknet, Stellar/Soroban, Arbitrum Stylus, Aptos, and beyond, often as an embedded extension of the client's engineering team.

We work the way the rest of the industry will five years from now. Every developer on the team is a fully AI-native engineer, supported by outstanding internal AI tooling built for every phase of secure development. Developers own their workstreams end-to-end — agents amplify their effectiveness, and peers, security researchers, and external auditors provide rigorous review on every piece of work that ships.

The Canton Network engagement

This role joins us at the start of a 24-month, multi-million-dollar commitment to build the open-source DeFi foundations of the world's most institutional blockchain, approved by the Canton Foundation. The scope:

• 8 production-ready Reference Implementations. Privacy-preserving DEX, lending protocol, cross-chain stablecoin settlement, confidential auction launchpad, and four more defined in year two. End-to-end blueprints that other teams will fork.
• The OpenZeppelin Contracts Library for Daml. The audited foundation Canton developers will import — vaults, hooks, RBAC, credentials, modular multi-sig accounts, standardized messaging gateway, DeFi math, staking, vesting, auctions, more. The same role our Solidity library plays today, on Canton.
• Canton standards implementation. Audited Daml implementations of CIP-56 (Token Standard), CIP-86 (ERC-20 Compatible Interface), CIP-103 (dApp Standard), and CIP-104 (Traffic-Based App Rewards) — designed to interoperate cleanly with the broader Splice ecosystem and with ChainSafe's CIP-86 middleware.
• 55 researcher-weeks of dedicated security capacity. Smart-contract audits, full-stack reviews, pen tests — amplified by OpenZeppelin's AI security agent in the workflow. Every release ships with a published audit report.
• AI-native developer experience for a new ecosystem. Contracts Wizard, UI Builder, MCP Server, Claude Plugin, AI Skills — all built for Canton, all AI-native end-to-end. You'll help define how AI-native engineering looks on a non-EVM stack.

You'll work alongside Digital Asset, the Canton Foundation, and ChainSafe. The deliverables become the standard others build on.